{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-02T03:17:20.965","vulnerabilities":[{"cve":{"id":"CVE-2018-1791","sourceIdentifier":"psirt@us.ibm.com","published":"2018-09-14T12:29:00.587","lastModified":"2024-11-21T04:00:22.740","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"IBM Connections 5.0, 5.5, and 6.0 is vulnerable to an External Service Interaction attack, caused by improper validation of a request property. By submitting suitable payloads, an attacker could exploit this vulnerability to induce the Connections server to attack other systems. IBM X-Force ID: 148946."},{"lang":"es","value":"IBM Connections 5.0, 5.5 y 6.0 es vulnerable a un ataque de interacción con servicios externos, provocado por la validación incorrecta de una propiedad de petición. Mediante el envío de cargas útiles adecuadas, un atacante podría explotar esta vulnerabilidad para inducir al servidor Connections a que ataque otros sistemas. IBM X-Force ID: 148946."}],"metrics":{"cvssMetricV30":[{"source":"psirt@us.ibm.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":2.7},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"LOW"},"exploitabilityScore":1.8,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:P/I:N/A:P","baseScore":4.9,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":6.8,"impactScore":4.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:connections:5.0:*:*:*:*:*:*:*","matchCriteriaId":"6F522A3A-A452-4D8F-B7A0-3AC80A0DD4AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:connections:5.5:*:*:*:*:*:*:*","matchCriteriaId":"8E02CAE7-BB6B-4AC7-AFE7-B1234ED0B8F3"},{"vulnerable":true,"criteria":"cpe:2.3:a:ibm:connections:6.0:*:*:*:*:*:*:*","matchCriteriaId":"8200F7F9-94B4-4F72-82F0-E4AFC5D49CD2"}]}]}],"references":[{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/148946","source":"psirt@us.ibm.com","tags":["VDB Entry","Vendor Advisory"]},{"url":"https://www.ibm.com/support/docview.wss?uid=ibm10731207","source":"psirt@us.ibm.com","tags":["Vendor Advisory"]},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/148946","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["VDB Entry","Vendor Advisory"]},{"url":"https://www.ibm.com/support/docview.wss?uid=ibm10731207","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}